Certificate problem

guru1612 · June 3, 2021, 11:39am

hi ,
i have a prolem when connecting searchguard and elasticsearch.
the problem is
Search Guard Admin v7
Will connect to localhost:9300 … done
Connected as CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com
ERR: CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com is not an admin user
Seems you use a node certificate. This is not permitted, you have to use a client certificate and register it as admin_dn in elasticsearch.yml

how to solve this?
I attached .yml files with this
elasticsearch.yml (3.5 KB)
topic.

jkressin · June 3, 2021, 12:38pm

It seems that when you use sgadmin to make configuration changes you have specified a node certificate, not an admin certificate. For security reasons, you cannot use a node certificate with sgadmin.

In your elasticsearch.yml you have configured one node certificate:

searchguard.nodes_dn:
- CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com

and two admin certificates:

searchguard.authcz.admin_dn:
- CN=spock.com,OU=CE,O=CE,DC=Circular Edge,DC=com
- CN=kirk.com,OU=CE,O=CE,DC=Circular Edge,DC=com

Please use either the spock or kirk certificate with sgadmin.

system · June 24, 2021, 12:38pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Try to connect with a ssl node certificate instead of an admin client certificate Search Guard	3	534	December 28, 2017
Searchgurad admin user vs certificate Search Guard	3	392	August 7, 2018
sgadmin client certificate authentication not working when using provider signed server certificate Search Guard	5	578	November 14, 2017
Using SAN in admin & node certificates DN? Search Guard	2	497	July 6, 2020
Sgadmin failing with certificate_unknown error with self-signed certificates Search Guard	3	1171	June 16, 2020

Certificate problem

Related Topics